CVE-2017-8905

Опубликовано: 02 мая 2017

Источник: redhat

CVSS3: 8.5

Описание

Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, which might allow PV guest OS users to execute arbitrary code on the host OS, aka XSA-215.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	xen	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

https://bugzilla.redhat.com/show_bug.cgi?id=1443220xen: possible memory corruption via failsafe callback (XSA-215)

8.5 High

CVSS3

Связанные уязвимости

CVE-2017-8905

CVSS3: 8.8

ubuntu

больше 8 лет назад

Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, which might allow PV guest OS users to execute arbitrary code on the host OS, aka XSA-215.

CVE-2017-8905

CVSS3: 8.8

nvd

больше 8 лет назад

Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, which might allow PV guest OS users to execute arbitrary code on the host OS, aka XSA-215.

CVE-2017-8905

CVSS3: 8.8

debian

больше 8 лет назад

Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, ...

GHSA-fff9-ccrg-mjcr

CVSS3: 8.8

github

больше 3 лет назад

Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, which might allow PV guest OS users to execute arbitrary code on the host OS, aka XSA-215.

SUSE-SU-2017:1715-1

suse-cvrf

больше 8 лет назад

Security update for xen

8.5 High

CVSS3